-
ScriptFTP LIST Remote Buffer Overflow
Disclosure Date: 2011-10-12First seen: 2020-04-26exploit/windows/ftp/scriptftp_listAmmSoft's ScriptFTP client is susceptible to a remote buffer overflow vulnerability that is triggered when processing a sufficiently long filename during a FTP LIST command resulting in overwriting the exception handler. Social engineering of executing a specially crafted ftp file by double click will result in connecting to our malicious server and perform arbitrary code execution which allows the attacker to gain the same rights as the user running ScriptFTP. This vulnerability affects versions 3.3 and earlier. Authors: - modpr0be - TecR0c <roccogiovannicalvi@gmail.com> - mr_me <steventhomasseeley@gmail.com>
1 metasploit modules found
Please note: Metasploit modules are only matched by CVE numbers.
Visit metasploit web site for more details